Table of Contents
Advertisement
NOTE
If a CA certificate is incorrectly generated, it is listed in the Server Certificates tab in the
Console rather than the CA Certificates tab. The certificate still works as a CA certificate,
even though it is listed in the wrong tab.
Still, request certificates from a real certificate authority to minimize the risk of using an
incorrectly generated certificate and breaking SSL/TLS in the Administration Server.
6.3. Enabling TLS/SSL
In order to run the Red Hat Console over TLS/SSL, the Administration Server and Directory Server
must also be configured to run in TLS/SSL.
This configures server authentication for the Console and the Red Hat Directory Server and
Administration Server.
1. Obtain server certificates and CA certs, and install them on the Directory Server. This is described
Section 6.2, "Installing
in
2. Obtain and install server and CA certificates on the Administration Server. This is a similar process
as for the Directory Server.
NOTE
It is important that the Administration Server and Directory Server have a CA
certificate in common so that they can trust the other's certificates.
3. If the default port number of 636 is not used, change the secure port setting.
a. Change the secure port number in the Configuration>Settings tab of the Directory Server
Console, and save.
Certificates".
Enabling TLS/SSL
67
Advertisement
Table of Contents
